• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 541
  • Last Modified:

What happens if i do not seize FSMO roles?

hi

i been playing with my servers by pulling out the power & watching how the other servers takes over running the show.

i was wondering what would happen if i leave the DC with the 5 fsmo turned off never to come back online? Would the other DC take them over after awhile without me seizing them?
0
hutnor
Asked:
hutnor
  • 5
  • 4
5 Solutions
 
PACSAdminCommented:
No you would have to seize them. In a properly configured AD environment you would not have all 5 roles on the one DC anyway.
0
 
Glen KnightCommented:
You MIGHT have all 5 FSMO roles on a single server if it were a single domain.  There is no technical reason why this cannot be done.

However, if the server that currently holds the 5 FSMO roles goes offline permenantly you WOULD need to SEIZE the roles, the other server would not automatically take them over.
0
 
hutnorAuthor Commented:
so they will roll over to my other server? I have not seen them change over. it is still coming up with the crashed server just saying it is offline.

how would you lay out the 5 roles?
0
Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

 
Glen KnightCommented:
no, they will not roll over, they will NEED to be seized.
Once you have seized the roles from another server the server they were seized from must NOT be brought back online until it has been formatted and rebuilt.
0
 
hutnorAuthor Commented:
Once you have seized the roles from another server the server they were seized from must NOT be brought back online until it has been formatted and rebuilt.

ops. i brought my "crashed" server back. it did not seem to mind. the dc that i got the seize the role still has the roll & the crashed server shows up not having the role.

Why do you say do not bring the old server back?
0
 
hutnorAuthor Commented:
I seize the RID role if that makes any difference. I left the other 4
0
 
Glen KnightCommented:
The RID role is one of the roles that is used pretty much every day.  When you create users, groups add computer objects to Active Directory the RID is used to generate the SID for that object.

if you have 2 RID servers then there is a possibility that you could receive duplicate SID's which is not good.

The other server will still think it is the RID master, just because you have seized it doesn't mean it no longer has that role.
0
 
hutnorAuthor Commented:
i had a look over event view & found a few logs pointing to that problem of two servers.

as a fix i tried transfering it back to the crashed dc & then back to the other one. do not see any more errors.
0
 
Glen KnightCommented:
hmmm, messy.
I don't know what effect that would have on your domain.  I wouldn't suggest doing that in a production environment
0
 
hutnorAuthor Commented:
yeh I would not do this in production & this is why I have a test network. It is great to not worry about it crashing.

Thanks for the suggestions & I will follow what I think is best for me at the time.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

  • 5
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now